An issue was discovered in Firmware Analysis and Comparison Tool v3.2. With administrator privileges, the attacker could perform stored XSS attacks by inserting JavaScript and HTML code in user creation functionality.
{
"source": "CPE_STRING",
"extracted_events": [
{
"introduced": "3.2"
},
{
"last_affected": "3.2"
}
],
"cpe": "cpe:2.3:a:firmware_analysis_and_comparison_tool_project:firmware_analysis_and_comparison_tool:3.2:*:*:*:*:*:*:*"
}